AsyncRAT botnet controller @52.250.60.164

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 52.250.60.164 on port 6821 TCP:
$ telnet 52.250.60.164 6821
Trying 52.250.60.164…
Connected to 52.250.60.164.
Escape character is ‘^]’

$ dig +short ate.westus2.cloudapp.azure.com
52.250.60.164

Referencing malware samples (MD5 hash):
c2aa11eaf8c10999cab913a2fb800c76 — AV detection: 39 / 69 (56.52%)

Добавить комментарий

Ваш адрес email не будет опубликован.